Openbravo Issue Tracking System - Openbravo ERP |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0009500 | Openbravo ERP | A. Platform | public | 2009-06-16 16:32 | 2009-07-16 17:55 |
|
| Reporter | shuehner | |
| Assigned To | shuehner | |
| Priority | normal | Severity | major | Reproducibility | have not tried |
| Status | closed | Resolution | fixed | |
| Platform | | OS | 5 | OS Version | |
| Product Version | pi | |
| Target Version | | Fixed in Version | | |
| Merge Request Status | |
| Review Assigned To | |
| OBNetwork customer | No |
| Web browser | |
| Modules | Core |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0009500: Add infrastructure to VariablesBase class to allow for technical validation of request parameters |
| Description | Add new get*Parameter function which allow to validate the data read from the request to ensure that they conform to the expected format (i.e. if they are a list of id's, columnnames, etc.). |
| Steps To Reproduce | |
| Proposed Solution | |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | | related to | defect | 0009578 | | closed | shuehner | When doing install.source some warnings appear | | blocks | defect | 0009145 | | closed | shuehner | SQL injection in Report Invoice Discount | | blocks | defect | 0009501 | | closed | shuehner | Audit all xsql to ensure that all xsql-parameters of type argument/replace are properly validated -part1 | | blocks | defect | 0009074 | | closed | shuehner | SQL injection in datagrid code |
|
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2009-06-16 16:32 | shuehner | New Issue | |
| 2009-06-16 16:32 | shuehner | Assigned To | => shuehner |
| 2009-06-16 16:32 | shuehner | OBNetwork customer | => No |
| 2009-06-16 16:33 | shuehner | Relationship added | blocks 0009101 |
| 2009-06-16 16:33 | shuehner | Relationship added | blocks 0009145 |
| 2009-06-16 16:40 | shuehner | Relationship added | blocks 0009501 |
| 2009-06-17 17:48 | hgbot | Checkin | |
| 2009-06-17 17:48 | hgbot | Note Added: 0017389 | |
| 2009-06-17 17:48 | hgbot | Status | new => resolved |
| 2009-06-17 17:48 | hgbot | Resolution | open => fixed |
| 2009-06-17 17:48 | hgbot | Fixed in SCM revision | => http://code.openbravo.com/erp/devel/pi/rev/f0eaa140a3143b633612c383a44d2977d9707b0b [^] |
| 2009-06-17 17:52 | hgbot | Checkin | |
| 2009-06-17 17:52 | hgbot | Note Added: 0017390 | |
| 2009-06-17 17:52 | hgbot | Fixed in SCM revision | http://code.openbravo.com/erp/devel/pi/rev/f0eaa140a3143b633612c383a44d2977d9707b0b [^] => http://code.openbravo.com/erp/devel/pi/rev/2a0efc182c89a43a87dbeca02eca95e2074a902b [^] |
| 2009-06-17 18:24 | shuehner | Relationship added | blocks 0009074 |
| 2009-06-17 18:24 | shuehner | Relationship deleted | blocks 0009101 |
| 2009-06-22 11:57 | shuehner | Relationship added | related to 0009578 |
| 2009-07-11 08:22 | pjuvara | Status | resolved => closed |
| 2009-07-16 17:55 | anonymous | sf_bug_id | 0 => 2822566 |